| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS08-059 | Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution (956695) | Microsoft Host | Critical | 15-10-2008 |
Technical Information
Brief overview of the risk:
A remote code execution vulnerability exists in the SNA Remote Procedure Call (RPC) service for Host Integration Server. An attacker could exploit the vulnerability by constructing a specially crafted RPC request.
Detailed Information on the risk:
The vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could take complete control of an affected system. Further information on this exploit is available at : MS08-059
Affected Software
Microsoft Host Integration Server 2000 Administrator ClientMicrosoft Host Integration Server 2000 Service Pack 2 (Server)
Microsoft Host Integration Server 2004 (Client)
Microsoft Host Integration Server 2004 (Server)
Microsoft Host Integration Server 2004 Service Pack 1 (Client)
Microsoft Host Integration Server 2004 Service Pack 1 (Server)
Microsoft Host Integration Server 2006 for 32-bit systems
Microsoft Host Integration Server 2006 for x64-based systems